How severe is CVE-2023-45236?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2023-45236?

This is classified as CWE-200, which is a common weakness in software security.

CVE-2023-45236

HIGH Year: 2023

CVSS v3 Score

7.5

High

Weakness Type

CWE-200

View all →

Vulnerability Description

EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

CVE-2009-5045

HIGH

CVSS:7.5(High)

Dump Servlet information leak in jetty before 6.1.22.

CWE-2002009

CVE-2010-1432

HIGH

CVSS:7.5(High)

Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Joomla! Core versions 1.5...

CWE-2002010

CVE-2010-2450

HIGH

CVSS:7.5(High)

The keygen.sh script in Shibboleth SP 2.0 (located in /usr/local/etc/shibboleth by default) uses OpenSSL to create a DES private key which is placed in sp-key.pm. It relies on the root umask (default ...

CWE-2002010

CVE-2011-2480

HIGH

CVSS:7.5(High)

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl allo...

CWE-2002011

CVE-2011-3269

HIGH

CVSS:7.5(High)

Lexmark X, W, T, E, C, 6500e, and 25xxN devices before 2011-11-15 allow attackers to obtain sensitive information via a hidden email address in a Scan To Email shortcut.

CWE-2002011

CVE-2011-3613

HIGH

CVSS:7.5(High)

An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled.

CWE-2002011

CVE-2023-45236

Vulnerability Description

Related Vulnerabilities

CVE-2009-5045

CVE-2010-1432

CVE-2010-2450

CVE-2011-2480

CVE-2011-3269

CVE-2011-3613